Security Advisories · datahub-project/datahub · GitHub

Security Advisories

View known security vulnerabilities and report new vulnerabilities privately to maintainers.

Report a vulnerability

false positives: datahub-java dependencies
GHSA-8cr6-69rq-2mj8 published Sep 20, 2024 by david-leifker

Low
false positive: datahub-web-react dependencies
GHSA-grf6-rh4c-p2p6 published Sep 20, 2024 by david-leifker

Low
Privilege escalation through email sign-up
GHSA-vj59-23ww-p6c8 published Nov 13, 2023 by david-leifker

High
Default Privileges allow for high level operations for low privileged users
GHSA-x3v6-r479-m4xv published Jan 10, 2024 by RyanHolstien

High
CLI Debug Logs contain Sensitive information
GHSA-g8pc-2p86-8x73 published Nov 13, 2023 by david-leifker

Low
Vulnerable Analytics-Utils Dependency in DataHub Frontend
GHSA-fmp6-j664-fqg5 published Nov 14, 2023 by david-leifker

High
Session Expiration Misconfiguration
GHSA-75p8-rgh2-r9mx published Nov 13, 2023 by david-leifker

Moderate
Insecure Use of HMAC-SHA1 For Session Signing
GHSA-fg9x-wvqw-6gmw published Nov 14, 2023 by david-leifker

Moderate
Snappy Java in 0.10.4
GHSA-856q-hvx6-h5qh published Sep 20, 2024 by jjoyce0510

High
JSON vulnerability in 0.10.2 datahub version
GHSA-7fpm-2gq5-7r2g published Aug 14, 2023 by david-leifker

High